PT-2021-11047 · D Link · D-Link Dsl-2888A

Harold Zang

Published

2021-01-08

Updated

2021-04-23

CVE-2020-24577

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: D-Link DSL-2888A versions prior to AU 2.31 V1.1.47ae55

Description: An issue was discovered where the One Touch application discloses sensitive information. This includes the hashed admin login password and the Internet provider connection username and cleartext password. The sensitive information is disclosed in the application's response body for a "/tmp/var/passwd" or "/tmp/home/wan stat" URI.

Recommendations: For versions prior to AU 2.31 V1.1.47ae55, update the firmware to AU 2.31 V1.1.47ae55 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/tmp/var/passwd" and "/tmp/home/wan stat" URIs until a patch is available. Avoid using the One Touch application until the issue is resolved.

Exploit

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2020-24577

Affected Products

D-Link Dsl-2888A

PT-2021-11047 · D Link · D-Link Dsl-2888A

CVE-2020-24577

Weakness Enumeration

Related Identifiers

Affected Products

References · 7